$ rpki-client -vvf rpki-rsync.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/3130332e39362e35322e302f32342d3234203d3e20323135373237.roa File: 3130332e39362e35322e302f32342d3234203d3e20323135373237.roa (raw, json) Hash identifier: XQXfUBbOhxVs8/s2589fLuZ2gOOuek0QydHFHlibVLk= Subject key identifier: 69:CD:F7:AB:73:A8:10:B4:38:24:C2:EC:82:15:74:CD:39:BA:57:C8 Certificate issuer: /CN=95C2241DAF3580597A730032BDD8356019AA8598 Certificate serial: 0FAD58E56EFC9E225291D7E064B6BB185654DF43 Authority key identifier: 95:C2:24:1D:AF:35:80:59:7A:73:00:32:BD:D8:35:60:19:AA:85:98 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/95C2241DAF3580597A730032BDD8356019AA8598.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/3130332e39362e35322e302f32342d3234203d3e20323135373237.roa Signing time: Sun 03 May 2026 02:44:49 +0000 ROA not before: Sun 03 May 2026 02:39:49 +0000 ROA not after: Sun 02 May 2027 02:44:49 +0000 asID: 215727 IP address blocks: 103.96.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/95C2241DAF3580597A730032BDD8356019AA8598.crl rsync://rpki-rsync.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/95C2241DAF3580597A730032BDD8356019AA8598.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/95C2241DAF3580597A730032BDD8356019AA8598.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:37:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:ad:58:e5:6e:fc:9e:22:52:91:d7:e0:64:b6:bb:18:56:54:df:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95C2241DAF3580597A730032BDD8356019AA8598 Validity Not Before: May 3 02:39:49 2026 GMT Not After : May 2 02:44:49 2027 GMT Subject: CN=69CDF7AB73A810B43824C2EC821574CD39BA57C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f2:21:1c:a0:68:68:9f:00:01:09:c7:0a:16: de:e6:90:2a:2e:ff:dd:67:cf:25:5b:4e:84:81:03: 87:35:c7:71:8d:80:e7:d4:64:15:2a:d9:e7:a9:1f: fb:90:5a:dd:be:63:48:54:8f:8d:0e:66:a6:a3:a9: 05:59:da:ea:3d:ce:fa:a4:08:21:e5:fe:ed:76:84: df:fe:06:b3:57:24:a9:61:4b:4b:99:6f:d7:c1:5a: b7:68:bd:27:43:05:ce:33:06:c5:18:33:21:dd:e3: 11:9b:8d:5f:23:0d:0d:3f:78:3f:2c:5d:3c:53:b9: e3:16:23:2e:15:e1:ff:76:b2:97:a4:08:bc:60:6e: 12:80:b9:fd:6a:c8:3d:c9:5a:1a:7a:c4:82:b2:e4: 6d:2d:74:54:dc:6a:0f:cd:dc:a3:e0:f2:ca:b9:5e: a4:33:59:74:f2:2a:60:04:d8:ad:40:79:91:d8:f8: dc:f8:d3:1c:14:0a:6d:f4:e8:ab:92:98:13:75:1c: 38:94:cd:0a:19:08:0c:57:06:0e:70:9e:d2:5a:96: fe:a8:c4:79:7d:f4:1e:8f:9b:b2:60:00:54:ba:f5: 9f:87:44:b9:7d:9f:c0:10:41:bb:a4:4c:13:52:fa: ee:c8:1d:49:fb:06:02:b3:b8:1c:da:0b:0d:cf:66: ea:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:CD:F7:AB:73:A8:10:B4:38:24:C2:EC:82:15:74:CD:39:BA:57:C8 X509v3 Authority Key Identifier: keyid:95:C2:24:1D:AF:35:80:59:7A:73:00:32:BD:D8:35:60:19:AA:85:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/95C2241DAF3580597A730032BDD8356019AA8598.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/95C2241DAF3580597A730032BDD8356019AA8598.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/3130332e39362e35322e302f32342d3234203d3e20323135373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.52.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:ca:b3:21:d6:9f:d2:5e:1b:e1:48:e7:a5:bb:86:04:15:b7: bc:c4:d8:89:ea:e0:76:8f:3c:6a:f4:bf:f1:89:ac:b0:45:58: 06:b9:b2:4b:2a:88:26:43:e7:f0:b4:50:b7:50:91:be:62:68: 0a:ba:5c:99:93:f1:0b:ca:a6:f8:59:4d:4d:8c:2b:96:cf:50: 73:ac:69:0d:b6:a0:97:2a:53:8f:e2:29:db:20:88:8c:95:4c: bb:6f:68:17:ea:67:bc:9f:01:9d:af:ff:3f:80:00:bf:01:5b: 84:57:30:0f:b7:7e:e4:e7:5a:77:55:13:4e:3d:da:5f:2f:f3: f0:c2:1a:e1:d4:fd:2a:88:62:9d:8c:c5:e9:64:41:0d:46:c1: 66:6a:92:bf:81:1f:f8:83:0e:c3:95:f1:83:5c:36:e6:14:31: 1a:be:bf:6f:e1:c9:80:08:58:98:a5:c0:56:28:3a:37:f8:82: c9:78:e4:75:b5:f7:63:02:7e:1d:f7:90:d5:01:4e:0a:7b:73: 03:29:3c:f5:32:9e:be:5c:70:c6:bd:21:c0:d1:48:38:b7:77: 1c:d7:32:bf:5e:44:d8:c3:b1:c6:ec:84:fd:13:44:08:9d:c7: c3:e6:14:5e:0e:ae:69:2d:9b:1d:6d:56:0f:0f:09:5f:7d:3e: c8:c5:fc:95 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUD61Y5W78niJSkdfgZLa7GFZU30MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVDMjI0MURBRjM1ODA1OTdBNzMwMDMyQkREODM1NjAx OUFBODU5ODAeFw0yNjA1MDMwMjM5NDlaFw0yNzA1MDIwMjQ0NDlaMDMxMTAvBgNV BAMTKDY5Q0RGN0FCNzNBODEwQjQzODI0QzJFQzgyMTU3NENEMzlCQTU3QzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV8iEcoGhonwABCccKFt7mkCou /91nzyVbToSBA4c1x3GNgOfUZBUq2eepH/uQWt2+Y0hUj40OZqajqQVZ2uo9zvqk CCHl/u12hN/+BrNXJKlhS0uZb9fBWrdovSdDBc4zBsUYMyHd4xGbjV8jDQ0/eD8s XTxTueMWIy4V4f92spekCLxgbhKAuf1qyD3JWhp6xIKy5G0tdFTcag/N3KPg8sq5 XqQzWXTyKmAE2K1AeZHY+Nz40xwUCm306KuSmBN1HDiUzQoZCAxXBg5wntJalv6o xHl99B6Pm7JgAFS69Z+HRLl9n8AQQbukTBNS+u7IHUn7BgKzuBzaCw3PZupJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUac33q3OoELQ4JMLsghV0zTm6V8gwHwYDVR0j BBgwFoAUlcIkHa81gFl6cwAyvdg1YBmqhZgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2ExYzRjMWYtNzE0MS00N2Q2LWE3ZjgtZTM1ZmZlMTE3NDA0LzAvOTVDMjI0MURB RjM1ODA1OTdBNzMwMDMyQkREODM1NjAxOUFBODU5OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NUMyMjQxREFGMzU4MDU5N0E3MzAwMzJCREQ4MzU2MDE5QUE4 NTk4LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdhMWM0YzFmLTcxNDEtNDdkNi1h N2Y4LWUzNWZmZTExNzQwNC8wLzMxMzAzMzJlMzkzNjJlMzUzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzEzNTM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdgNDANBgkqhkiG 9w0BAQsFAAOCAQEAP8qzIdaf0l4b4UjnpbuGBBW3vMTYiergdo88avS/8YmssEVY BrmySyqIJkPn8LRQt1CRvmJoCrpcmZPxC8qm+FlNTYwrls9Qc6xpDbaglypTj+Ip 2yCIjJVMu29oF+pnvJ8Bna//P4AAvwFbhFcwD7d+5Odad1UTTj3aXy/z8MIa4dT9 KohinYzF6WRBDUbBZmqSv4Ef+IMOw5Xxg1w25hQxGr6/b+HJgAhYmKXAVig6N/iC yXjkdbX3YwJ+HfeQ1QFOCntzAyk89TKevlxwxr0hwNFIOLd3HNcyv15E2MOxxuyE /RNECJ3Hw+YUXg6uaS2bHW1WDw8JX30+yMX8lQ== -----END CERTIFICATE-----Generated at Wed May 13 04:26:23 2026 by rpki-client